$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: sGFERYbo4Wfi4h2c5NlcPkTr/m+xyNDXzDxbF8n3UQA= Subject key identifier: B6:28:F2:EE:8A:E4:BD:BC:55:34:FC:11:44:CA:0F:3E:BE:88:28:E1 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2BF5 Signing time: Fri 08 Aug 2025 16:58:26 +0000 Manifest this update: Fri 08 Aug 2025 16:58:25 +0000 Manifest next update: Fri 15 Aug 2025 16:58:25 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: hgHJYFSponNwVM3OvEdHSl9YqrEg+cMPRIN5FCnE6kU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3879 (0xf27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Aug 8 16:58:25 2025 GMT Not After : Aug 15 16:58:25 2025 GMT Subject: CN=68962cb1-9662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:50:9c:ff:33:7c:1a:05:14:a1:35:ec:c8:f0: b9:64:66:5a:19:82:e0:0a:5e:0b:3c:80:15:c1:7e: bd:a4:04:6d:bc:5a:1a:18:2f:70:c4:93:bf:0e:b1: cb:71:8d:7e:28:14:91:b4:05:a1:67:b4:bd:90:39: 68:73:ee:a2:a8:f6:07:c9:5d:14:0a:4f:a8:8e:44: f3:b6:88:05:33:ba:d0:a8:41:f7:53:2a:84:52:1d: d4:b3:ef:32:f4:0b:52:52:af:87:d5:16:5b:af:c3: 9f:30:12:9a:8d:3c:ac:07:eb:b1:99:ea:97:04:36: 11:6c:98:9f:e6:e7:27:ad:72:ce:71:4f:0e:90:9a: 16:52:87:48:c8:fe:24:74:54:be:c7:9e:6d:c3:6a: 79:e3:0c:60:85:d5:cf:fb:90:f9:da:53:fe:f8:eb: 4e:79:ed:59:3f:d2:4b:2d:c7:ed:b8:65:7e:af:af: a1:2f:97:a6:fe:3c:8d:f5:c9:af:36:41:94:b9:d5: 02:94:63:65:1c:1e:92:3f:5c:ee:6b:d0:51:ca:4b: be:18:e2:79:af:28:ef:dc:4e:6c:83:91:8e:05:fe: 90:c6:76:e5:cc:a0:b0:8e:38:01:35:26:54:1b:6c: 56:d2:80:ad:42:ad:a2:d1:3d:cf:de:4b:ac:f1:2a: d5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:28:F2:EE:8A:E4:BD:BC:55:34:FC:11:44:CA:0F:3E:BE:88:28:E1 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ee:84:b0:9e:d9:d4:b6:98:48:73:85:42:31:b3:25:4c:97: da:81:ef:1a:a1:80:3c:5c:b5:91:77:27:55:6e:d9:91:2a:c4: b6:e2:8a:47:0a:3b:fa:48:a3:3d:1a:b0:85:88:de:ad:13:09: a3:cb:cb:51:9e:7d:3f:40:aa:1d:8d:cb:ec:88:e0:78:62:28: 5a:95:53:39:20:67:89:2a:77:ac:8d:d3:94:8a:cc:5b:a9:31: 12:6a:f3:6c:cb:cc:1e:bb:8a:43:32:e7:45:4b:ba:12:f8:20: 64:e3:ed:cf:6b:bf:db:d7:b2:c9:5e:3c:e7:bf:3c:6f:7f:92: d2:87:a3:3f:05:ef:15:e9:58:85:0f:4f:a2:08:1e:47:bb:db: 1b:b6:33:21:47:71:28:73:e5:14:ff:0f:c2:16:cf:38:26:2a: 2b:d1:5b:56:14:53:ca:d6:83:59:38:73:fc:2d:46:f1:72:d7: f5:4d:46:04:8a:a5:ea:a6:31:6b:ae:3e:1c:36:90:3c:d7:6a: 9e:81:54:12:d2:35:28:6c:bb:af:94:e9:eb:16:b8:ce:25:eb: 62:bc:88:e1:96:8d:16:11:4f:ef:83:d7:5c:a7:99:b8:78:79: 0c:a8:7d:d4:32:11:a3:ab:ee:9f:06:8a:6d:bb:7e:b4:b7:bd: 61:24:48:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwODA4MTY1ODI1WhcNMjUwODE1MTY1ODI1WjAYMRYwFAYD VQQDEw02ODk2MmNiMS05NjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1Cc/zN8GgUUoTXsyPC5ZGZaGYLgCl4LPIAVwX69pARtvFoaGC9wxJO/DrHL cY1+KBSRtAWhZ7S9kDloc+6iqPYHyV0UCk+ojkTztogFM7rQqEH3UyqEUh3Us+8y 9AtSUq+H1RZbr8OfMBKajTysB+uxmeqXBDYRbJif5ucnrXLOcU8OkJoWUodIyP4k dFS+x55tw2p54wxghdXP+5D52lP++OtOee1ZP9JLLcftuGV+r6+hL5em/jyN9cmv NkGUudUClGNlHB6SP1zua9BRyku+GOJ5ryjv3E5sg5GOBf6QxnblzKCwjjgBNSZU G2xW0oCtQq2i0T3P3kus8SrV2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYo8u6K 5L28VTT8EUTKDz6+iCjhMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA17oSwntnUtphIc4VCMbMlTJfage8aoYA8XLWRdydVbtmRKsS24opH Cjv6SKM9GrCFiN6tEwmjy8tRnn0/QKodjcvsiOB4YihalVM5IGeJKnesjdOUisxb qTESavNsy8weu4pDMudFS7oS+CBk4+3Pa7/b17LJXjznvzxvf5LSh6M/Be8V6ViF D0+iCB5Hu9sbtjMhR3Eoc+UU/w/CFs84Jior0VtWFFPK1oNZOHP8LUbxctf1TUYE iqXqpjFrrj4cNpA812qegVQS0jUobLuvlOnrFrjOJetivIjhlo0WEU/vg9dcp5m4 eHkMqH3UMhGjq+6fBoptu360t71hJEhW -----END CERTIFICATE-----Generated at Sat Aug 9 23:14:26 2025 by rpki-client